Cobalt, a provider of Penetration Testing as a Service (PTaaS), has achieved the Cloud Security Alliance (CSA) AI Trustworthy Pledge. This was accomplished through the completion of the CSA Security, Trust, Assurance, and Risk (STAR) Level 1 CAIQ Self-Assessment, based on CAIQ v4.0.3, indicating adherence to the CSA Cloud Controls Matrix and a commitment to transparent, responsible security for cloud-native operations.

The CSA STAR program serves as a benchmark for cloud security maturity recognized by enterprises and regulators. By completing the CAIQ Self-Assessment, Cobalt aims to provide customers, partners, and prospects with insight into its governance, risk management, data protection, and secure operational practices.

Andrew Obadiaru, CISO at Cobalt, stated that this achievement reflects Cobalt’s practical approach to security, moving beyond a checkbox exercise. He emphasized that the Cobalt Offensive Security Platform is designed to deliver continuous, real-world assurance through active testing, providing proof that security controls withstand attacks.

The Cobalt Platform consolidates access to security services from its team of expert pentesters, facilitating the discovery and remediation of vulnerabilities across client environments. It supports faster pentest launches, real-time collaboration with testers, continuous scanning, and integration with remediation workflows to help identify critical issues and expedite risk mitigation.

Furthermore, the platform aids in fulfilling common certification and assessment requirements, including vendor security reviews, PCI, HIPAA, and SOC 2. This enables organizations to demonstrate their security posture while maintaining development velocity. Cobalt’s completion of the CSA STAR Level 1 CAIQ Self-Assessment underscores its dedication to secure cloud operations and transparent security practices.